2 matches found
CVE-2009-4512
Directory traversal vulnerability in index.php in Oscailt 3.3, when Use Friendly URL's is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the objid parameter...
CVE-2009-4512
Oscailt 3.3 is affected by a directory traversal vulnerability in index.php where, if Use Friendly URL’s is disabled, an attacker can cause local files to be included and executed by supplying a .. in the obj_id parameter. The NVD entry (CVE-2009-4512) describes this as a mixed impact issue with ...